Executive Summary

Summary
Title HP-UX Running BIND 8, Remote DNS Cache Poisoning
Informations
Name HPSBUX02289 SSRT071461 First vendor Publication 2007-11-19
Vendor HP Last vendor Modification 2007-11-19
Severity (Vendor) N/A Revision 1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score 4.3 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential vulnerability has been identified with HP-UX running BIND 8. The vulnerability could be exploited remotely to cause DNS cache poisoning.

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01283837

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:2154
 
Oval ID: oval:org.mitre.oval:def:2154
Title: Security Vulnerability in BIND 8 May Allow Cache Poisoning Attack
Description: The (1) NSID_SHUFFLE_ONLY and (2) NSID_USE_POOL PRNG algorithms in ISC BIND 8 before 8.4.7-P1 generate predictable DNS query identifiers when sending outgoing queries such as NOTIFY messages when answering questions as a resolver, which allows remote attackers to poison DNS caches via unknown vectors. NOTE: this issue is different from CVE-2007-2926.
Family: unix Class: vulnerability
Reference(s): CVE-2007-2930
Version: 1
Platform(s): Sun Solaris 8
Sun Solaris 9
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 50

OpenVAS Exploits

Date Description
2009-05-05 Name : HP-UX Update for BIND 8 HPSBUX02289
File : nvt/gb_hp_ux_HPSBUX02289.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
36796 ISC BIND Outgoing Query Predictable DNS Query ID

Nessus® Vulnerability Scanner

Date Description
2007-12-04 Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_36185.nasl - Type : ACT_GATHER_INFO
2007-10-17 Name : The remote host is missing Sun Security Patch number 114265-23
File : solaris9_x86_114265.nasl - Type : ACT_GATHER_INFO
2007-09-25 Name : The remote host is missing Sun Security Patch number 112837-24
File : solaris9_112837.nasl - Type : ACT_GATHER_INFO
2004-07-12 Name : The remote host is missing Sun Security Patch number 109326-24
File : solaris8_109326.nasl - Type : ACT_GATHER_INFO
2004-07-12 Name : The remote host is missing Sun Security Patch number 109327-24
File : solaris8_x86_109327.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:38:28
  • Multiple Updates